JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.56.28.137

193.56.28.137 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.56.28.137

Whois 193.56.28.137

IP Abuse Reports for 193.56.28.137:

This IP address has been reported a total of 38 times from 15 distinct sources. 193.56.28.137 was first reported on November 27th 2020, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 03:55:11 (4 days ago)	Web App Attack	Web App Attack
🇦🇺 oncord	2026-05-04 16:09:27 (1 month ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-12 00:37:42 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 19:37:34.863723 2026] [security2:error] [pid 25901:tid 25901] [client 193.56.28.137:42487] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10mostwantedfugitives.com"] [uri "/v2/.git/config"] [unique_id "aY0gzvHlqYg4FBU4PmdEXQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 17:13:16 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 12:13:11.824076 2026] [security2:error] [pid 21541:tid 21541] [client 193.56.28.137:30199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aquatech-ind.com"] [uri "/.env.save"] [unique_id "aYy4py_5aWSzHeT80wS6zwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:00:08 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 06:27:56 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:27:51.256560 2026] [security2:error] [pid 15172:tid 15172] [client 193.56.28.137:35653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ikutabukkyokai.com"] [uri "/backend/.env"] [unique_id "aYrP5zRrxTc1v4vgN5ivtQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:49:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:49:18.766697 2026] [security2:error] [pid 1510149:tid 1510149] [client 193.56.28.137:51833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kithouse.org"] [uri "/.env.staging"] [unique_id "aYqqvpbBFKzlgx00lSW1VwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:23:55 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:23:49.053835 2026] [security2:error] [pid 841:tid 841] [client 193.56.28.137:58583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kircali.net"] [uri "/admin/.env"] [unique_id "aYqkxSfmzze_1NDY0RqP0gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:55:43 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:55:34.349431 2026] [security2:error] [pid 22838:tid 22838] [client 193.56.28.137:62671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingdomvalleyfarm.com"] [uri "/site/.git/config"] [unique_id "aYqeJvYpbtmQmn1z8cC-7QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:33:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:33:26.095048 2026] [security2:error] [pid 12746:tid 12795] [client 193.56.28.137:27361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kellenlee.com"] [uri "/.env.production"] [unique_id "aYpuxi7qoT-4nEbOWPXdywAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Bedios GmbH	2026-02-09 22:04:02 (4 months ago)	Login credentials theft attempt	Hacking
🇺🇸 TPI-Abuse	2026-02-09 22:03:36 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:03:27.196134 2026] [security2:error] [pid 1973:tid 1973] [client 193.56.28.137:48703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenullmann.com"] [uri "/.env.save"] [unique_id "aYpZr0bBrnyrjc604Y6qPAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-22 15:26:19 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:43:37 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:43:33.137448 2025] [security2:error] [pid 25106:tid 25158] [client 193.56.28.137:59849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.cargowebstore.com"] [uri "/.env"] [unique_id "aSQatTsFdfAxnE8Jg1ZBfgAAAY0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:54:40 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:54:35.681679 2025] [security2:error] [pid 3965259:tid 3965342] [client 193.56.28.137:31961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.certifiedecommerceconsultant.com"] [uri "/.env"] [unique_id "aSPlC8HsvdKIeQe-cM8T8wAAAVE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 137.59.109.132

🇺🇸 216.73.217.23

🇧🇷 205.210.31.231

🇧🇪 198.235.24.176

🇹🇷 195.62.50.186

🇬🇧 193.163.125.100

🇧🇷 187.58.241.90

🇳🇱 185.223.235.34

🇮🇳 182.78.112.174

🇧🇷 177.70.242.98

🇺🇸 172.214.44.3

🇳🇵 160.250.255.64

🇺🇸 104.243.46.222

🇫🇷 88.162.214.183

🇬🇧 86.29.180.83

🇵🇱 79.110.201.164

🇮🇳 49.43.182.30

🇳🇱 45.142.193.169

🇺🇸 216.73.217.130

🇧🇬 193.24.211.107